TANDBERG D13691.03 user manual OpenLDAP, Securing with TLS

Page 75

TANDBERG Border Controller User Manual

objectClass: h323Identity

objectClass: h235Identity

commUniqueId: comm1

h323Identityh323-ID: MeetingRoom1

h323IdentitydialedDigits: 626262

h235IdentityEndpointID: meetingroom1

h235IdentityPassword: mypassword

Add the ldif file to the server using the command:

ldifde -i -c DC=X <ldap base> -f filename.ldf

This will add a single H.323 endpoint with an H.323 Id alias of MeetingRoom1 and an E.164 alias of 626262. The entry also has H.235 credentials of id meetingroom1 and password mypassword which are used during authentication.

B.1.3 Securing with TLS

To enable Active Directory to use TLS, you must request and install a certificate on the Active Directory server. The certificate must meet the following requirements:

Be located in the Local Computer’s Personal certificate store. This can be seen using the Certificates MMC snap in.

Have the private details on how to obtain a key associated for use with it stored locally. When viewing the certificate you should see a message saying “You have a private key that corresponds to this certificate”.

Have a private key that does not have strong private key protection enabled. This is an attribute that can be added to a key request.

The Enhanced Key Usage extension includes the Server Authentication object identifier, again this forms part of the key request.

Issued by a CA that both the domain controller and the client trust.

Include the Active Directory fully qualified domain name of the domain controller in the common name in the subject field and/or the DNS entry in the subject alternative name extension.

B.2 OpenLDAP

B.2.1 Prerequisites

These instructions assume that an OpenLDAP server has already been installed. For details on installing OpenLDAP see the documentation at http://www.openldap.org.

The following examples use a standard OpenLDAP installation on the Linux platform. For installations on other platforms the location of the OpenLDAP configuration files may be different. See the OpenLDAP installation documentation for details.

68

Image 75
Contents Tandberg Border Controller Disclaimer Trademarks and copyrightEnvironmental Issues TANDBERG’s Environmental PolicyEnvironmental Considerations Operator Safety Summary Page Contents Software Upgrade Introduction Tandberg Border Controller Overview Installation PrecautionsUnpacking Mounting Connecting CablesSwitching on the System Installation site preparationsBorder Controller Initial Configuration Page System Administration Administrator AccountGetting started Registration Neighbor GatekeepersRoot Account Search Order Alternate Border Controllers Call Control Location decision flow diagram Firewall Traversal Bandwidth Control Page Bandwidth Control and Firewall Traversal Bandwidth Control Examples Network Deployment with firewalls Page Registration Restriction Policy Registration ControlAuthentication Authentication using a local databaseAuthentication using an Ldap server Securing the Ldap connection with TLS Creating DNS SRV records URI DialingPage Simple Enterprise deployment Example Traversal deploymentsDialing Public IP addresses Enterprise GatekeepersURI dialing from within the enterprise Neighbored enterprisesPage Address-switch Call PolicyMaking Decisions Based on Addresses Subfield Reject CPL Script ActionsLocation ProxySelective Call Screening Unsupported CPL ElementsCPL Examples Call screeningCall Redirection Controlling what is logged LoggingEvent log format Logged Events Event LevelsDNS 245,NTP,DNS,LDAP Event dataPage YYYY/MM/DD-HHMMSS Remote LoggingUpgrading Using Https Software UpgradeUpgrading Using SCP Page Ethernet Command ReferenceStatus CallsLdap ExternalmanagerFeedback 11.1.5 IPResourceUsage 11.1.8 NTPPipes RegistrationsZones Authentication11.2 Configuration SystemUnitGatekeeper Page 11.2.6 IP HTTP/HTTPSLdap 11.2.9 Log 11.2.10 NTPOption Key Session Snmp11.2.15 SSH Subzones Telnet TimeZoneTraversal Zones Command CheckBandwidth BootAllowListAdd AllowListDeleteDenyListDelete DefaultLinksAddDefaultValuesSet DenyListAddLinkAdd FeedbackRegisterFeedbackDeregister FindRegistrationPipeDelete OptionKeyAddOptionKeyDelete PipeAddHistory Feedback Eventlog Other commandsAbout ClearSyslog RelkeyBind 8 Appendix Configuring DNS ServersMicrosoft DNS Server Verifying the SRV recordAs expected Adding H.350 objects Appendix Configuring Ldap ServersMicrosoft Active Directory PrerequisitesSecuring with TLS OpenLDAPInstalling the H.350 schemas Add the H.350 objects EMC Immunity Electrical SafetyApprovals EMC Emission Radiated Electromagnetic InterferenceTechnical Specifications Physical Dimensions Power supplyCertification References Glossary Index

D13691.03 specifications

The TANDBERG D13691.03 is a cutting-edge communication device that has been designed to meet the rigorous demands of modern business environments. Known for its reliability and versatility, the D13691.03 offers a comprehensive suite of features that enhance collaboration and productivity for organizations seeking seamless communication solutions.

One of the key characteristics of the TANDBERG D13691.03 is its exceptional video quality. Equipped with advanced video codecs, this device provides users with crystal clear HD video, ensuring that every interaction is as lifelike and engaging as possible. The intelligent bandwidth management technology optimizes the video quality based on the available network conditions, allowing for smooth and uninterrupted communication even in less than ideal network scenarios.

In addition to superior video capabilities, the D13691.03 boasts impressive audio technology. With integrated echo cancellation and noise reduction features, users can enjoy natural and clear audio during calls. This ensures that conversations are not only visually effective but also audibly intelligible, allowing for a more immersive communication experience.

Another notable feature of the TANDBERG D13691.03 is its user-friendly interface. Designed with usability in mind, the device comes with a touchscreen interface that simplifies navigation through the various settings and options. Users can easily connect with colleagues, schedule meetings, and access video conferencing features in just a few taps.

Moreover, the D13691.03 supports various connectivity options, including Ethernet and Wi-Fi, providing users with the flexibility to connect to their networks with ease. The device is also compatible with standard video conferencing protocols, making it an ideal solution for organizations that utilize multiple communication platforms.

The D13691.03 has been designed with security in mind, featuring advanced encryption protocols to protect sensitive data during video calls. This ensures that conversations remain confidential and secure, which is crucial for businesses handling proprietary information.

Overall, the TANDBERG D13691.03 stands out as a robust communication solution that enhances the way organizations interact. With its blend of high-quality video and audio capabilities, user-friendly design, and strong security measures, this device is well-equipped to handle the dynamic needs of modern workplaces, facilitating collaboration and driving productivity. Businesses looking to improve their communication infrastructure will find the TANDBERG D13691.03 to be an invaluable addition to their technology arsenal.